INSE 425 Computer and Network Forensics
Explore tools and techniques used to find, follow, and extract digital markers from computers and networking devices used in cybercrimes. The course examines the fundamentals of system forensics including an overview of forensics, a discussion of computer crime, the challenges of system forensics, and forensics methods. Learn the tools, techniques, and methods used to perform computer forensics and investigation including collecting evidence, investigating information-hiding, recovering data, and scrutinizing e-mail in hands on labs and a summative project.
Prerequisite
INSE 400
Washington Technology University
Syllabus
INSE 425 : Computer and Network Forensics
5 Credits
Approved: 12/19/2018 4:41:01 PM
Course Description
Explore tools and techniques used to find, follow, and extract digital markers from computers and networking devices used in cybercrimes. The course examines the fundamentals of system forensics including an overview of forensics, a discussion of computer crime, the challenges of system forensics, and forensics methods. Learn the tools, techniques, and methods used to perform computer forensics and investigation including collecting evidence, investigating information-hiding, recovering data, and scrutinizing e-mail in hands on labs and a summative project.
Course Required Resources
Easttom, C. (2019). System Forensics, Investigation, and Response. Burlington, Massachusetts: Jones & Bartlett.
Course Outcomes
Describe the basic hardware and networking knowledge needed for computer and networking forensics
Apply appropriate forensic strategies based on the specific crimes
Prepare a computer for a forensic examination
Leverage basic cryptography and general cryptanalysis techniques to hide messages
Demonstrate how to retrieve full email headers for several email clients
Gather evidence from a Windows registry and Windows log files
Perform network analysis and analyze routers for forensic evidence
Identify specific tools used for forensic investigations
Course Keywords
No keywords listed.
Assignment Summary
25% Project – Digital Forensic Investigation and Evidence Collection
In this project, students will complete a series of four online labs. In these labs, students will leverage forensic investigation tools, services, and manufacturer provided system utilities to identify and collect evidence of abnormal computer activity. Students will work in a secured live environment on real compromised systems. Lab #3, Lab #5, Lab #6, Lab #7.
25% - Instructor Determined Assignments, Collaboration and Participation (attendance and online activities)
The instructor will evaluate participation in the course and in online discussions. The instructor may also include other assignments. The instructor-determined assignments and discussions will be distributed and evaluated such that the total point value reflects the weighting given in the rubrics. The instructor will provide the grading criteria, rubrics, and directions for completing these assignments.
Midterm Exam
Students should be prepared to answer a variety of types of questions pertinent to the concepts covered in or suggested by the course materials, assignments and activities. The instructor may provide additional information about the content, style, and grading criteria of this exam. The test will cover all concepts covered since the first day of class
25% - Final Exam
Students should be prepared to answer a variety of types of questions pertinent to the concepts covered in or suggested by the course materials, assignments and activities. The instructor may provide additional information about the content, style, and grading criteria of this exam. The exam will be limited to concepts covered since the mid-term.